Forum Discussion
SharePoint document embeds stuck on Sign In screen [worldwide bug + reproducible]
Iframe embeds of SharePoint documents (Excel, PowerPoint, Word etc) show the "Sign In" screen regardless of access permissions. Clicking sign in opens a popup, authenticates, closes popup, and no redirection occurs.
Console shows request errors for /_api/contextinfo and /_api/web/Language
This bug is global/worldwide and is not due to any local setup or tenant configuration. Has been introduced in the past few days. Same bug described here: Unable to Embed SharePoint Document.
Steps to reproduce:
1. Chrome or Edge: open any SharePoint document (Excel, PowerPoint, Word).
2. File, Share, Embed.
3. Copy-paste the iframe embed code into a new JSFiddle.
4. Click "Sign In".
5. Open dev console to see the errors.
Seems to work in Firefox, so could be a Chromium issue.
Is there an official method to report bugs to Microsoft or are these forums the only option?
Update: as of about 2024-04-29T20:30:00 (UTC) this just started working again for us. Seems like MS fixed whatever broke before we could get to the bottom of it. We had started entering the ticket and in reproducing the steps noticed it had started working. It was definitely still broken as of 2-3 hours ago for our tenant though.
4 Replies
Update: as of about 2024-04-29T20:30:00 (UTC) this just started working again for us. Seems like MS fixed whatever broke before we could get to the bottom of it. We had started entering the ticket and in reproducing the steps noticed it had started working. It was definitely still broken as of 2-3 hours ago for our tenant though.
Greg McMurrayMy investigation led me to CHIPS. Two critical cookies - FedAuth, and rtFa - set by sharepoint.com had changed to include a "partition key" value. This meant that when sharepoint.com was framed on a page with a different domain, those cookies weren't being sent to the server. Today, those cookies are no longer being set with a "partition key", so it looks like Microsoft has rolled back that change.
CHIPS is not implemented in Firefox, hence why you didn't experience the issue in that browser.
- Thanks Greg, yep works again here too.
It is worth noting that our experience with this issue (in Dynamics CRM specifically) includes having made sure all the needed domains are included in the SharePoint Site Settings -> HTML Field Security settings.
